0Xfun

**Name of the Vulnerable Software and Affected Versions** VirtFusion versions through 6.0.2 **Description** A security issue exists in VirtFusion that relates to improper restriction of excessive authentication attempts. The issue is located within the Email Change Handler component, specifically affecting unknown code within the `/account/ settings` file. The attack can be initiated remotely. The exploit for this issue has been publicly disclosed. **Recommendations** Versions prior to 6.0.3 should be updated.